Vulnerabilities > Linaro

DATE CVE VULNERABILITY TITLE RISK
2021-12-07 CVE-2021-36133 Incorrect Permission Assignment for Critical Resource vulnerability in Linaro Op-Tee
The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory.
local
low complexity
linaro CWE-732
3.6
2021-12-07 CVE-2021-44149 Incorrect Authorization vulnerability in Linaro Op-Tee
An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0.
local
low complexity
linaro CWE-863
4.6
2021-05-21 CVE-2021-32032 Memory Leak vulnerability in Linaro Trusted Firmware-M
In Trusted Firmware-M through 1.3.0, cleaning up the memory allocated for a multi-part cryptographic operation (in the event of a failure) can prevent the abort() operation in the associated cryptographic library from freeing internal resources, causing a memory leak.
network
low complexity
linaro CWE-401
5.0
2020-11-18 CVE-2020-13799 Authentication Bypass by Capture-replay vulnerability in multiple products
Western Digital has identified a security vulnerability in the Replay Protected Memory Block (RPMB) protocol as specified in multiple standards for storage device interfaces, including all versions of eMMC, UFS, and NVMe.
local
low complexity
westerndigital linaro CWE-294
4.6
2019-07-16 CVE-2019-1010292 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE Prior to version v3.4.0 is affected by: Boundary checks.
network
low complexity
linaro CWE-119
7.5
2019-07-15 CVE-2019-1010298 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
critical
10.0
2019-07-15 CVE-2019-1010297 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
critical
10.0
2019-07-15 CVE-2019-1010296 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
critical
10.0
2019-07-15 CVE-2019-1010295 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
7.5
2019-07-15 CVE-2019-1010294 Numeric Errors vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error.
network
low complexity
linaro CWE-189
5.0